On An Old, Unfixed Firefox Bug Still Being Leveraged By Cybercriminals

Information Security Buzz
Original Source
Information Security Buzz

This article originally appeared in Information Security Buzz on December 11, 2018.

Cybercriminals are still leveraging a 17-year old bug in Firefox that has not been fixed, to snag users on malicious websites.

Mike Bittner, Digital Security & Operations Manager at The Media Trust:

“While bad actors may find a haven in the Firefox browser, they are able to execute similar campaigns using malicious sites regardless of which browser users default on. As an open source product, Firefox is easier to exploit for ill or for good. However, bad actors have become sophisticated enough to know the wide range of vulnerabilities they can work with in order to hijack a browser session. The fact that Firefox hasn’t addressed the bug simply makes hijacking easier.”